Skills
skills/membranedev/application-skills/dataforseo/Gen Agent Trust Hub

dataforseo

Pass

Audited by Gen Agent Trust Hub on Apr 21, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill installs the @membranehq/cli package from the global NPM registry. This is the official command-line utility for the Membrane platform, used to manage integrations and proxy API requests.
  • [COMMAND_EXECUTION]: Utilizes shell commands via the membrane binary to perform authentication, search for connectors, and execute API actions. These operations are restricted to the intended functionality of the integration platform.
  • [PROMPT_INJECTION]: The skill processes untrusted data from external search results and web page parsing, which constitutes a surface for indirect prompt injection.
  • Ingestion points: Content retrieved via membrane action run and membrane request (e.g., SERP data, parsed HTML, and keyword lists).
  • Boundary markers: The skill instructions do not specify explicit delimiters to separate the retrieved external data from the agent's instructions.
  • Capability inventory: The agent has the capability to execute shell commands through the membrane CLI and make network requests via the platform proxy.
  • Sanitization: No explicit sanitization or filtering of the ingested external content is described in the skill instructions.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 21, 2026, 03:36 PM